ADM 4346 Chapter Notes - Chapter 8: Network Access Control, Intrusion Detection System, Network Virtualization
Document Summary
Chapter 8: information systems controls for system reliability part 1: information security. Ais controls: coso and coso-erm address general internal control, cobit addresses information technology internal control. Information for management should be: effectiveness, information must be relevant and timely, efficiency, information must be produced in a cost-effective manner, confidentiality, sensitive information must be protected from unauthorized disclosure. Cobit framework: plan & organize acquire & implement deliver & support monitor & evaluate. 210 controls for ensuring information integrity: subset is relevant for external auditors. It control objectives for sarbanes-oxley, 2nd edition: aicpa and cica information systems controls, controls for system and financial statement reliability. Processing integrity: data are processed accurately, completely, in a timely manner, and only with proper authorization, availability, the system and its information are available to meet operational and contractual obligations. Security / systems reliability: foundation of the trust services framework, management issue, not a technology issue. Management"s role in is security: create security aware culture.